Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Singtel hit by data theft breach

Incident
First reported
Last updated
Happening score
H score 43
1 unique sources, 1 articles

Summary

Hide ▲

A confirmed UNC3886 breach of Singapore’s four largest telcosSingtel, StarHub, M1, and Simba—created a multi-organization compromise risk across a critical national communications sector. Attackers gained limited access to critical systems after using a zero-day exploit to get past perimeter defenses. Authorities said they found no evidence of customer data theft and no service disruption, but the intrusion still exposed sensitive telecom infrastructure to further abuse.

Related Happenings

Interlock Cisco Secure Firewall Management Center zero-day exploitation wave

Exploitation Wave
First: 18.03.2026 18:53 Last: 18.03.2026 18:53 Sources 1

About this happening: A **zero-day exploitation wave** tied to **Interlock** has been hitting **Cisco Secure Firewall Management Center (FMC)**, putting **enterprise firewalls** at risk before patching...

Open Happening

TELUS Digital hit by network compromise

Incident
First: 12.03.2026 16:40 Last: 12.03.2026 16:40 Sources 1

About this happening: **TELUS Digital** confirmed a **cybersecurity incident** involving unauthorized access to a limited number of systems, and the company is still determining what was taken. The inc...

Open Happening

Singapore disrupts UNC3886 telco intrusion campaign

Law Enforcement
First: 10.02.2026 14:30 Last: 10.02.2026 14:30 Sources 1

About this happening: **Singapore** disrupted **UNC3886** attacks against the country's **four telecommunications operators**, ending a secret **11-month** counter-cyber operation. The effort, known as...

Open Happening

UNC3886 campaign against Singapore telecommunications sector

Campaign
First: 09.02.2026 19:01 Last: 09.02.2026 19:01 Sources 1

About this happening: **UNC3886** mounted a **deliberate espionage campaign** against **Singapore's telecommunications sector**, putting **all four major telcos** at risk. The operation targeted **M1,...

Open Happening

ShinyHunters Salesforce extortion campaign against global companies in 2025

Campaign
First: 15.01.2026 17:45 Last: 15.01.2026 17:45 Sources 1

About this happening: The **ShinyHunters** campaign now includes a **Qantas** breach disclosed after the airline found a **June 30, 2025** intrusion in a **third-party platform** used by one customer s...

Open Happening

Timeline

  1. 10.02.2026 00:47 2 articles · 3mo ago

    UNC3886 telecom intrusion details and containment update

    Technical Analysis Update

    Singapore authorities said UNC3886 breached Singtel, StarHub, M1, and Simba, used a zero-day exploit to bypass perimeter firewalls, and relied on rootkits to remain stealthy while maintaining persistence. Investigators confirmed compromise across all four operators, found no evidence that sensitive customer data was accessed or stolen, and reported no service disruption, while containment actions closed access points, expanded monitoring across critical infrastructure, and supported Operation Cyber Guardian after the intrusions were disclosed in July 2025.

    Show sources
    Open in new tab